mirror of
				https://github.com/ezyang/htmlpurifier.git
				synced 2025-10-25 02:26:32 +02:00 
			
		
		
		
	- Minor typos fixed; we're release ready! git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@1350 48356398-32a2-884e-a903-53898d9a118a
		
			
				
	
	
		
			17 lines
		
	
	
		
			492 B
		
	
	
	
		
			Plaintext
		
	
	
	
	
	
			
		
		
	
	
			17 lines
		
	
	
		
			492 B
		
	
	
	
		
			Plaintext
		
	
	
	
	
	
| 
 | |
| Security
 | |
| 
 | |
| Like anything that claims to afford security, HTML_Purifier can be circumvented
 | |
| through negligence of people. This class will do its job: no more, no less,
 | |
| and it's up to you to provide it the proper information and proper context
 | |
| to be effective. Things to remember:
 | |
| 
 | |
| 1. Character Encoding: see enduser-utf8.html for more info.
 | |
| 
 | |
| 2. IDs: see enduser-id.html for more info
 | |
| 
 | |
| 3. URIs: see enduser-uri-filter.html
 | |
| 
 | |
| 4. CSS: document pending
 | |
| Explain which CSS styles we blocked and why.
 |